The remote host is missing an update to heartbeatannounced via advisory USN-335-1.

A security issue affects the following Ubuntu releases:

Ubuntu 5.04Ubuntu 5.10Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.

Yan Rong Ge discovered that heartbeat did not sufficiently verify somepacket input data, which could lead to an out-of-boundary memoryaccess. A remote attacker could exploit this to crash the daemon(Denial of Service).

Solution:The problem can be corrected by upgrading your system to thefollowing package versions:

Ubuntu 5.04: heartbeat 1.2.3-3ubuntu1.3

Ubuntu 5.10: heartbeat 1.2.3-12ubuntu0.2

Ubuntu 6.06 LTS: heartbeat 1.2.4-2ubuntu0.2

In general, a standard system upgrade is sufficient to effect thenecessary changes.